On June 27, 2017, A.P. Møller-Maersk, the world's largest shipping conglomerate, experienced a severe cybersecurity incident that significantly disrupted its operations. The company's IT systems were infiltrated by a malicious ransomware attack, leading to widespread encryption of files and demands for ransom payments in bitcoin to decrypt the information. The attack quickly spread across Maersk's global network, affecting computers, servers, and digital infrastructure in offices across 130 countries. The rapid escalation of the crisis forced Maersk's IT staff to undertake an emergency shutdown of the entire network to prevent further spread of the malware. This action left the company's operations paralyzed, with significant impacts on global shipping and logistics operations. The incident required a massive recovery effort, including the manual reinstallation of thousands of IT systems and servers, highlighting the vulnerability of global corporations to sophisticated cyber attacks.
Source: https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/
TPRM report: https://scoringcyber.rankiteo.com/company/a-p-moller-maersk-group
"id": "a-p428050724",
"linkid": "a-p-moller-maersk-group",
"type": "Cyber Attack",
"date": "09/2018",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Shipping and Logistics',
'location': 'Global',
'name': 'A.P. Møller-Maersk',
'size': 'Large',
'type': 'Shipping Conglomerate'}],
'attack_vector': 'Malicious ransomware',
'data_breach': {'data_encryption': 'Files encrypted'},
'date_detected': '2017-06-27',
'description': "A.P. Møller-Maersk, the world's largest shipping "
'conglomerate, experienced a severe cybersecurity incident '
'that significantly disrupted its operations due to a '
'ransomware attack.',
'impact': {'downtime': 'Significant',
'operational_impact': 'Paralyzed operations',
'systems_affected': ['Computers',
'Servers',
'Digital Infrastructure']},
'motivation': 'Ransom payment',
'ransomware': {'data_encryption': 'Widespread encryption of files',
'ransom_demanded': 'Bitcoin'},
'response': {'containment_measures': 'Emergency shutdown of the entire '
'network',
'recovery_measures': 'Massive recovery effort',
'remediation_measures': 'Manual reinstallation of thousands of '
'IT systems and servers'},
'title': 'Maersk Ransomware Attack',
'type': 'Ransomware Attack'}